<?php

/**
 * @Project NUKEVIET 3.x
 * @Author VINADES.,JSC (contact@vinades.vn)
 * @Copyright (C) 2010 VINADES., JSC. All rights reserved
 * @Createdate 3-6-2010 0:14
 */

if ( ! defined( 'NV_IS_MOD_SHOPS' ) ) die( 'Stop!!!' );

$order_id = $nv_Request->get_string( 'order_id', 'get', '' );
$checkss = $nv_Request->get_string( 'checkss', 'get', '' );

if ( $order_id > 0 and $checkss == md5( $order_id . $global_config['sitekey'] . session_id() ) )
{
	$table_name = $db_config['prefix'] . "_" . $module_data . "_orders";
	$link = NV_BASE_SITEURL . "index.php?" . NV_LANG_VARIABLE . "=" . NV_LANG_DATA . "&amp;" . NV_NAME_VARIABLE . "=" . $module_name . "&amp;" . NV_OP_VARIABLE . "=";
	
	$result = $db->sql_query( "SELECT *  FROM `" . $table_name . "` WHERE `order_id`=" . $order_id );
	$data = $db->sql_fetchrow( $result );
	
	if ( empty( $data ) )
	{
		Header( "Location: " . nv_url_rewrite( NV_BASE_SITEURL . "index.php?" . NV_LANG_VARIABLE . "=" . NV_LANG_DATA . "&" . NV_NAME_VARIABLE . "=" . $module_name, true ) );
		exit();
	}
	
	$listid = explode( "|", $data['listid'] );
	$listnum = explode( "|", $data['listnum'] );
	$listprice = explode( "|", $data['listprice'] );
	$data_pro = array();
	$temppro = array();
	$i = 0;
	
	foreach ( $listid as $proid )
	{
		if ( empty( $listprice[$i] ) ) $listprice[$i] = 0;
		if ( empty( $listnum[$i] ) ) $listnum[$i] = 0;
		
		$temppro[$proid] = array( 
			"price" => $listprice[$i],
			"num" => $listnum[$i] 
		);
		
		$arrayid[] = $proid;
		$i ++;
	}
	
	if ( ! empty( $arrayid ) )
	{
		$templistid = implode( ",", $arrayid );
		
		$sql = "SELECT t1.id, t1.listcatid, t1.publtime, t1." . NV_LANG_DATA . "_title, t1." . NV_LANG_DATA . "_alias, t1." . NV_LANG_DATA . "_note, t1." . NV_LANG_DATA . "_hometext, t2." . NV_LANG_DATA . "_title, t1.money_unit  FROM `" . $db_config['prefix'] . "_" . $module_data . "_rows` as t1 LEFT JOIN `" . $db_config['prefix'] . "_" . $module_data . "_units` as t2 ON t1.product_unit = t2.id WHERE  t1.id IN (" . $templistid . ")  AND t1.status=1";
		$result = $db->sql_query( $sql );
		
		while ( list( $id, $listcatid, $publtime, $title, $alias, $note, $hometext, $unit, $money_unit ) = $db->sql_fetchrow( $result ) )
		{
			$data_pro[] = array(
				"id" => $id,
				"publtime" => $publtime,
				"title" => $title,
				"alias" => $alias,
				"product_note" => $note,
				"hometext" => $hometext,
				"product_price" => $temppro[$id]['price'],
				"product_unit" => $unit,
				"money_unit" => $money_unit,
				"link_pro" => $link . $global_array_cat[$listcatid]['alias'] . "/" . $alias . "-" . $id,
				"product_number" => $temppro[$id]['num'] 
			);
		}
	}
	
	$contents = call_user_func( "print_pay", $data, $data_pro );
	
	include ( NV_ROOTDIR . "/includes/header.php" );
	echo $contents;
	include ( NV_ROOTDIR . "/includes/footer.php" );
}
else
{
	Header( "Location: " . nv_url_rewrite( NV_BASE_SITEURL . "index.php?" . NV_LANG_VARIABLE . "=" . NV_LANG_DATA . "&" . NV_NAME_VARIABLE . "=" . $module_name, true ) );
	exit();
}

?>